Support Center > Search Results > SecureKnowledge Details
Application's traffic is dropped on CleanUp rule, although it is allowed by the Application Control policy Technical Level
Symptoms
  • Application traffic is dropped on CleanUp rule / any other Block rule in FW policy, although it is allowed by the Application Control policy.
Cause

Ports used by the application are not allowed explicitly by the Firewall policy, which takes precedence over Application Control policy.


Solution

Configure the Firewall policy to match the Application Control policy to allow the relevant traffic.

Need to check what ports/IP addresses Allow in policy and what is seen in Drop log and allow ports / IP addresses that are dropped in General FW policy.

This solution has been verified for the specific scenario, described by the combination of Product, Version and Symptoms. It may not work in other scenarios.
This solution is about products that are no longer supported and it will not be updated

Give us Feedback
Please rate this document
[1=Worst,5=Best]
Comment